3 matches found
CVE-2020-13997
In Shopware before 6.2.3, the database password is leaked to an unauthenticated user when a DriverException occurs and verbose error handling is enabled...
CVE-2020-13997
In Shopware before 6.2.3, the database password is leaked to an unauthenticated user when a DriverException occurs and verbose error handling is enabled...
CVE-2020-13997
Shopware 6 vulnerable before 6.2.3: when DriverException occurs and verbose error handling is enabled, the database password is leaked to an unauthenticated user. Affected component is the database error handling path in Shopware’s driver layer. Impact is exposure of credentials without authentic...